GDPR is updated data protection legislation that became law across Europe and the UK on 25th May 2018


Our simple to follow online framework assisted by experts as you journey towards GDPR compliance


See our demonstration to better understand how we can help your organisation work towards compliance



On 25 May 2018, the General Data Protection Regulation (GDPR) became law across Europe, including the UK.  The Data Protection Act 1998 was also replaced with the Data Protection Act 2018. 

GDPR introduces tougher fines for non-compliance and breaches, and gives people more say over what companies can do with their data and the right to compensation.  It also makes data protection rules more or less identical throughout the EU. Visit our GDPR FAQs blog for quick answers to the top 20 questions people have about GDPR.

Why should you care about GDPR?


Although this law comes from the EU, it has a global impact.  It affects any business worldwide holding personal data on customers, prospects or employees based within the EU.  If businesses ignore this law, they can be fined up to €20m or 4% of their global annual turnover – so the price of non-compliance could be very costly!  The GDPR requires organisations to create and maintain plans to protect personal data that they collect, store and use, follow defined procedures and plans in the event of a data breach, regularly evaluate their security practices, and document evidence of their compliance.

GDPR Compliance Concepts

Many of the GDPR’s main concepts and principles are much the same as those in the current Data Protection Act, so if you are complying properly with the Data Protection Act 2018, then most of your approach to compliance will remain valid under the GDPR and can be the starting point to build from.  However, there are new elements and significant enhancements, so you will have to do some things for the first time and some things differently to be compliant with the GDPR.


Many people were expecting a ‘big bang’ when GDPR came into force but when it all went quiet, lots of people saw this as a law that they do not need to worry about.  However, breaches will occur and when they do, they have to be reported, investigated and prosecuted (yes – you are prosecuted!).  This will take time, so dont be lulled into a false sense of security and do nothing.  In the last 12 months over half of SME’s and around three quarters of large organisations identified breaches or attacks (Data source: www.gov.uk – Cyber Security Breaches Survey 2018).  It is essential to plan your approach to GDPR compliance now and to gain ‘buy in’ from key people in your organisation. You may need, for example, to put new procedures in place to deal with the GDPR’s new transparency and individuals’ rights provisions. In a large or complex business this could have significant budgetary, IT, personnel, governance and communications implications.



GDPR123 have wide ranging data protection expertise to help organisations prepare for the GDPR, offering a comprehensive suite of Compliance Solutions, Information Resources and Consultancy Services.

GDPR123 have created a Framework that is designed to help organisations achieve GDPR Compliance in a timely manner and to instil the right governance, policies and procedures to maintain ongoing compliance to the regulation.

We have already helped hundreds of customers on the road to GDPR Compliance, both in the UK and abroad, and have experience of working with clients across all industry sectors.

Wherever you are in your GDPR journey, we are here to help.



I have worked in security for 11 years and I have to say that this is the best framework I have used.

– Atif, Cisco CCNA, London

GDPR123 have been great, not only does their tool guide us through this process, it also gives us the documents we didnt even know we needed to become compliant!

– John, Financial Institution

We needed to be compliant quickly because a Council we work for required it.  We managed to be compliant in 5 weeks.

– Morris, Waste Management, Nuneaton

Would have expected the Government to help with this more.  GDPR123 to the rescue. Very good solution for us. Would recommend.

– Muazzam, SEO Marketing, Wimbledon

Our situation is complex as we have 3 different companies and were quoted a fortune.  £695 and a little effort later were compliant.

– Jason, Building Management, Esher

I heard about GDPR123 from a business friend and decided to give them a go.  GLAD I DID.

– Martin, Surveyor, Brighton

Started November finished for Christmas, Happy 2018!

– Tim, Graphic Designer, Greenwich

We have grown quickly and now turnover £12m and the fines were a concern.  Very helpful and gave excellent advice.

– Simon, Specialist Metal Fabrication, Dorset

GDPR was a proving to be a nightmare for us and we were quoted £6000. We bought the £695 package after speaking with ***** and it proved to be all we needed. Very happy.

– Jennifer, HR Manager, Stoke

5 stars.  Really helpful and easy to deal with.

– Wendy, Recruitment Consultant, Winchester

I am not sure if anyone else had the same trouble but we tried doing this ourselves and it was impossible.  I do not know how they expect an average business to become GDPR compliant.  Really happy we contacted GDPR123.  Very easy, even for me.

– Marie, Health and Beauty, Burghfield Common

We are probably most people’s worst nightmare, didn’t have a clue about GDPR.  Decided to buy the £695 option, done in 6 weeks as promised.

– Debs, Estate Agent, Harrogate

I am glad this is now completed as we looked at this last year and gave up.

– Claire, Operations Manager, Leicester

We tried doing this ourselves and quickly realised it was harder than it looked.  We bought the £695 package and with a bit of perseverance we were done in 4 weeks.

– Tracie, Nursery Manager, Storrington

GDPR123 are fantastic.  Would recommend.  Done in 3 weeks.

– Hazel, Florist, Kent

We are medium sized electrical contractor and work mainly for Councils.  Fantastic, great service and worth every penny.

– Nathan, Commercial Electrician, Sussex

Can’t fault them. Great Service.

– Malcolm, Accountant, Pimlico

Annoyed that the Government didn’t help more but glad I spoke to GDPR123. Would definitely recommend.

– Brian, Solicitor, Edenbridge

Would recommend, would give 10/10.

– David, IT Director, Coventry

I didn’t have the time for this with opening our restaurant. Happy I called.

– Marius, Restaurant Owner, Bath

Decided I needed to get this done and didn’t know a thing about it.  Still some work required by us to get it done but the guys at GDPR123 were an invaluable resource. Glad it’s finished.

– Jerry, IT Manager, Cheadle Hulme



Our GDPR Framework is a comprehensive system that aims to simplify the process of the GDPR Compliance journey.

The framework comprises our online GDPR Compliance Assistant which is a simple-to-use question and answer based GAP Analysis tool, detailed supporting documentation, a full audit trail of evidence for you to be able to demonstrate that your organisation is operating within GDPR guidelines, and 4 hours of remote consultancy to support you throughout the process.

Our GDPR Framework is designed for any company size – from home-based micro-businesses to large enterprises who may already have set up a GDPR team in-house. If you need to be GDPR compliant quickly and easily then our framework is made for you.



GDPR123 have wide ranging data protection expertise to help organisations prepare for the GDPR, offering a comprehensive suite of Compliance Solutions, Information Resources and Consultancy Services.



When contacted with an enquiry, GENERAL DATA PROTECTION REGULATION (GDPR) LTD will hold the entity name and contact details only for the purposes of handling the enquiry.
We will hold this data for 1 calendar month after last interaction.

The online forms are subject to the same cookies and tracking as the rest of the website.
Please check to confirm your consent for us to store your data to handle your enquiry.
You can withdraw consent at any time using the same form
For more information please see our fair processing notice.